$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/11b08533-7e4f-4dde-8f78-bb8fa0cbe278.roa File: 11b08533-7e4f-4dde-8f78-bb8fa0cbe278.roa (raw, json) Hash identifier: MxUanSaovYRbNT8ThHOfMLrL+kck+IQsoN4gQK72E08= Subject key identifier: 83:D1:C9:C1:91:C0:69:BD:DC:53:F5:1F:83:59:05:57:3F:B0:39:BF Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 72EDD88AF9D9D174418A41DB269E4648BA324680 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/11b08533-7e4f-4dde-8f78-bb8fa0cbe278.roa Signing time: Tue 19 Aug 2025 16:40:28 +0000 ROA not before: Tue 19 Aug 2025 16:40:28 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 801 IP address blocks: 35.96.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:ed:d8:8a:f9:d9:d1:74:41:8a:41:db:26:9e:46:48:ba:32:46:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Aug 19 16:40:28 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=9599474718b968872b3186c44eabd19b66bfaae26183ffa13e2c39f26850e607, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:66:f2:5b:b0:b7:bd:2e:39:0e:e3:a4:59:c9: ee:db:15:ce:0c:fa:2c:37:2c:f3:cc:50:a1:7a:02: 95:35:29:0a:ed:75:a7:7b:66:76:f8:52:0b:55:9f: 36:dc:64:a2:c1:f9:14:ab:56:b4:13:84:32:76:32: 4a:20:45:2f:29:55:1d:e2:8b:c3:ad:27:7e:28:4c: b9:67:d2:9f:f6:f3:98:4b:b4:d5:40:7a:69:97:f4: 09:b5:39:f5:dd:27:be:da:b5:17:63:db:8b:86:25: 24:91:d4:61:7c:69:bc:af:7c:c4:1e:3a:aa:73:97: 0e:6c:ff:2b:8c:ae:b5:58:e8:a2:dc:45:9e:9f:b6: aa:8d:3e:78:8f:c0:40:48:e5:86:cb:28:45:f7:e7: 9c:09:d8:0b:7e:67:d8:fe:45:f2:4b:04:68:18:32: cb:24:69:8e:91:96:89:c4:11:1b:51:77:7d:37:47: 13:d6:62:fc:a5:17:e3:02:5f:52:66:ac:40:bc:06: 49:c3:f0:34:34:ff:80:e4:67:67:98:df:3a:8a:04: c3:57:01:27:8e:b3:cc:c3:5f:fd:95:5a:44:8a:cc: d7:9a:77:95:89:6e:b9:f9:95:5c:8d:53:6b:8d:d7: 8a:59:13:c6:1b:20:3c:13:ef:81:77:dd:3d:8c:8e: d4:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:D1:C9:C1:91:C0:69:BD:DC:53:F5:1F:83:59:05:57:3F:B0:39:BF X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/11b08533-7e4f-4dde-8f78-bb8fa0cbe278.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.96.244.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:8e:3b:f6:ac:e0:42:54:18:92:1f:0d:63:37:ae:55:37:18: 29:cd:16:5d:5f:5f:f9:92:94:d6:5e:e1:ae:e7:d4:30:05:1a: 2b:c3:b9:ce:e4:ed:85:07:67:5e:a0:b0:9d:f4:9b:7f:27:97: 97:a5:37:95:23:e9:46:68:5b:47:64:69:d9:9d:f6:ec:f4:11: dc:b9:fd:39:87:4a:25:1b:02:83:b7:d0:f1:0c:7e:be:46:2e: 33:c9:b0:da:83:a6:8b:6a:c4:95:66:c8:cf:88:e0:d5:4e:2c: c7:4d:32:ab:20:1b:80:d1:c0:b2:18:b7:7a:f2:f6:c0:df:b8: fc:86:d6:6c:6b:cf:92:b1:b1:77:83:d5:92:e8:0e:9e:9e:84: 29:a4:fc:5f:4d:ef:d6:81:c2:cc:4a:48:60:9f:a1:48:ce:b2: 18:1b:e1:66:52:6e:d1:14:31:d1:7c:8e:c4:43:ec:24:71:ca: 4d:25:86:25:91:26:dc:f4:35:b7:80:7f:09:48:ad:de:81:04: a9:17:c8:de:0e:a5:4c:6d:6f:08:38:32:16:42:d9:f2:02:cd: 9d:16:ed:58:35:f0:14:52:48:ec:d4:b8:dd:be:c0:d1:41:5e: 66:4c:69:07:c7:ab:fa:60:87:16:ff:3c:9f:a8:ac:ed:5c:98: 33:60:6f:a4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcu3YivnZ0XRBikHbJp5GSLoyRoAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwODE5MTY0MDI4WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5NTk5NDc0NzE4Yjk2ODg3MmIzMTg2YzQ0ZWFiZDE5YjY2 YmZhYWUyNjE4M2ZmYTEzZTJjMzlmMjY4NTBlNjA3MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsZvJbsLe9LjkO46RZye7bFc4M+iw3LPPMUKF6ApU1KQrt dad7Znb4UgtVnzbcZKLB+RSrVrQThDJ2MkogRS8pVR3ii8OtJ34oTLln0p/285hL tNVAemmX9Am1OfXdJ77atRdj24uGJSSR1GF8abyvfMQeOqpzlw5s/yuMrrVY6KLc RZ6ftqqNPniPwEBI5YbLKEX355wJ2At+Z9j+RfJLBGgYMsskaY6RlonEERtRd303 RxPWYvylF+MCX1JmrEC8BknD8DQ0/4DkZ2eY3zqKBMNXASeOs8zDX/2VWkSKzNea d5WJbrn5lVyNU2uN14pZE8YbIDwT74F33T2MjtQ5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUg9HJwZHAab3cU/Ufg1kFVz+wOb8wHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzExYjA4NTMzLTdlNGYtNGRkZS04Zjc4LWJiOGZhMGNiZTI3OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjYPQwDQYJKoZIhvcNAQELBQADggEBACqOO/as4EJUGJIfDWM3rlU3GCnN Fl1fX/mSlNZe4a7n1DAFGivDuc7k7YUHZ16gsJ30m38nl5elN5Uj6UZoW0dkadmd 9uz0Edy5/TmHSiUbAoO30PEMfr5GLjPJsNqDpotqxJVmyM+I4NVOLMdNMqsgG4DR wLIYt3ry9sDfuPyG1mxrz5KxsXeD1ZLoDp6ehCmk/F9N79aBwsxKSGCfoUjOshgb 4WZSbtEUMdF8jsRD7CRxyk0lhiWRJtz0NbeAfwlIrd6BBKkXyN4OpUxtbwg4MhZC 2fICzZ0W7Vg18BRSSOzUuN2+wNFBXmZMaQfHq/pghxb/PJ+orO1cmDNgb6Q= -----END CERTIFICATE-----Generated at Sat Aug 23 15:18:50 2025 by rpki-client